Suricata 8.0.2 and 7.0.13 released!

Announcements
, , ,
1

We are pleased to announce the releases of Suricata 8.0.2 and 7.0.13.

These are security releases, fixing a number of important issues.

Get the releases here:

8.0.2: https://www.openinfosecfoundation.org/download/suricata-8.0.2.tar.gz

7.0.13: https://www.openinfosecfoundation.org/download/suricata-7.0.13.tar.gz

Notable Changes

Suricata-update has been updated to version 1.3.7. This version is bundled with the releases.

Various security, performance, accuracy, and stability issues have been fixed.

8.0.2 tickets: 8.0.2 - Suricata - Open Information Security Foundation

7.0.13 tickets: 7.0.13 - Suricata - Open Information Security Foundation

CVE IDs Addressed:

  • CVE-2025-64344: HIGH (7.0.x and 8.0.x)
  • CVE-2025-64333: HIGH (7.0.x and 8.0.x)
  • CVE-2025-64332: HIGH (7.0.x and 8.0.x)
  • CVE-2025-64331: HIGH (7.0.x and 8.0.x)
  • CVE-2025-64330: HIGH (7.0.x and 8.0.x)
  • CVE-2025-64335: HIGH (8.0.x only)
  • CVE-2025-64334: HIGH (8.0.x only)

Suricata Security Advisories: https://github.com/OISF/suricata/security/advisories

OISF Signing key updated

The OISF signing key has been recently updated to have a later expiration date. It is the same key as before, but users will need to refresh it:

gpg --receive-keys 2BA9C98CCDF1E93A

It can also be downloaded from:

https://www.openinfosecfoundation.org/downloads/OISF.pub

Special Thanks

Adam Kiripolsky, Alain Térieur, Amir Boussejra, Andreas Dolp, Andy Awad, Bai Liang, Cheng Longfei, Fupeng Zhao, Heng Li, Jamie Lavigne, Jesse Lepich, Jules Lumbergh, Marko Jahnke, Outreachy, OSS-Fuzz, Coverity.

Join us for SuriCon 2025!!

This year’s Suricata Community Conference is happening this month in Montreal, Canada, from November 19 to 21.

SuriCon is a great place to present exciting work or research done with Suricata. Come share it with us! Check the agenda, we always have great talks :smiley: Agenda Montreal – SURICON

This year, we have three 2-day training sessions to choose from, including a brand-new Threat Hunting class, and a Rule Writing training. Some rooms are getting full, don’t miss your spot! Trainings – SURICON

Check everything SuriCon and get book room deals at https://suricon.net/ .

About Suricata

Suricata is a high-performance Network Threat Detection, IDS, IPS, and Network Security Monitoring engine. Open-source and owned by a community-run non-profit foundation, the Open Information Security Foundation (OISF). Suricata is developed by OISF, its supporting vendors, and the community.

2 Likes